Features and benefits
Reduce risk
Segment devices without redesigning the network. Easily manage access to enterprise resources. Restrict lateral movement of threats with micro-segmentation.
Apply policies across the network
Scale fast and enforce policies consistently across the network. Streamline security policy management across domains. Use Cisco ISE to manage TrustSec security group tags and share information with other group-based policy schemes.
Lower operational expenses
Forrester Consulting conducted an analysis of customers using TrustSec software-defined segmentation in production networks. The findings: TrustSec reduced operational costs by 80 percent and enabled policy changes 98 percent faster.
Streamline compliance
Control access to regulated applications using simple group-based policies. Reduce the scope of compliance for regulations such as PCI, HIPAA, and DFARS.
How to enable
Cisco TrustSec security groups give users access that is consistently maintained as resources move across domains. It simplifies the management of switch, router, and firewall rules. Yet you still have granular control of your network.
Define security group tags
Assign security group tags (SGTs) to enforce access policies for users, applications, and devices.
Manage policies with ISE
Use the Cisco Identity Services Engine (ISE) to define and manage SGTs on your network.
Share policies across domains
Use Cisco ISE to share TrustSec group information with other group-based policy schemes.
Services
Get the strongest possible security. Cisco Services help you integrate technologies, migrate from other solutions, and optimize your existing solutions.
